SaaS Security Engineer (SSPM)

About The Position

Requirements

• 5+ years of experience in Security Engineering, Cloud Security, SaaS Security, or related cybersecurity disciplines.
• Hands-on experience implementing and managing one or more SaaS Security Posture Management (SSPM) solutions, including: AppOmni Obsidian Palo Alto SaaS Security solutions Adaptive Shield Wing Security Valence Or similar SSPM technologies
• Strong understanding of: SaaS Security Architecture Identity & Access Management (IAM) Data Protection & Privacy Controls API Security Security Monitoring & Detection SaaS Governance & Risk Management
• Experience securing and assessing SaaS environments integrated with AWS, Azure, GCP, and/or OCI.
• Proficiency with: Python PowerShell REST APIs Terraform GitHub Security Automation Frameworks
• Experience integrating security tools and building automated workflows across enterprise environments.
• Strong analytical, troubleshooting, documentation, and communication skills.
• Ability to work effectively with technical and business stakeholders in complex enterprise environments.

Nice To Haves

• Experience implementing CASB solutions and SaaS governance programs.
• Knowledge of SaaS application onboarding, certification, and vendor risk management processes.
• Familiarity with AI and Generative AI security risks within SaaS platforms.
• Experience with cloud-native security controls and enterprise cloud security frameworks.
• Understanding of compliance frameworks and security standards such as NIST, ISO 27001, CIS Controls, and CSA Cloud Controls Matrix.
• Experience supporting large-scale SaaS environments with complex integration ecosystems.
• CISSP
• CCSP
• AWS Certified Security – Specialty
• Google Professional Cloud Security Engineer
• Microsoft Azure Security Engineer Associate
• Oracle Cloud Infrastructure Security Professional

Responsibilities

• Lead the implementation, configuration, and administration of SaaS Security Posture Management (SSPM) platforms across enterprise environments.
• Continuously assess SaaS applications for security risks, configuration weaknesses, identity governance issues, excessive permissions, and data exposure concerns.
• Monitor and remediate SaaS configuration drift and security posture deviations across business-critical applications.
• Identify and evaluate risks associated with third-party integrations, connected applications, and SaaS ecosystems.
• Establish SaaS security baselines, governance controls, and remediation processes to improve overall security posture.
• Support SaaS onboarding, certification, and security review activities to ensure compliance with enterprise security requirements.
• Develop and maintain integrations between SSPM platforms, Identity and Access Management (IAM) solutions, SIEM platforms, governance tools, and ticketing systems.
• Build automation workflows using APIs, scripting, and Infrastructure-as-Code methodologies to improve operational efficiency and security visibility.
• Create dashboards, reports, and metrics to provide stakeholders with actionable insights into SaaS security posture and compliance status.
• Assess cloud-connected SaaS environments across AWS, Microsoft Azure, Google Cloud Platform (GCP), and Oracle Cloud Infrastructure (OCI).
• Review identity federation, API connectivity, logging, monitoring, and data protection controls associated with SaaS platforms.
• Partner with cloud security, security operations, governance, and risk management teams to ensure consistent security standards and controls.
• Document findings, risk assessments, remediation recommendations, and security exceptions.
• Contribute to the development of SaaS security standards, governance frameworks, and secure-by-design practices.
• Support emerging technology initiatives, including AI and Generative AI-enabled SaaS platforms, through security assessments and risk evaluations.

Benefits

• Technologent is an Equal Opportunity Employer -- EEO/AA Employer/Vet/Disabled -- for reasonable accommodations, please contact us at [email protected]